$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft File: lSamckeK-nVEXY0H3MV8BYlm7-I.mft (raw, json) Hash identifier: hPBZGoNMX0nNOwnutbUt9h5UobNaTYw+Zey5K/BSq9o= Subject key identifier: 6D:F5:A9:87:85:CA:72:6F:40:95:91:A2:E5:A9:11:3B:BB:80:D6:D7 Authority key identifier: 95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 Certificate issuer: /CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Certificate serial: 027E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft Manifest number: 0276 Signing time: Mon 03 Nov 2025 01:35:39 +0000 Manifest this update: Mon 03 Nov 2025 01:35:38 +0000 Manifest next update: Mon 10 Nov 2025 01:35:38 +0000 Files and hashes: 1: lSamckeK-nVEXY0H3MV8BYlm7-I.crl (hash: ILVeNmrGqhFXD4kJAiYLKVg1O8Ly2ZkScbkDyVvUe04=) 2: 6F46908C2D3411ED92165562C4F9AE02.roa (hash: sR0eTjFYTlKs7mzVHMIl7telIMsp7nYju6MlYaiMBkg=) 3: 6E98B3182D3411ED92165562C4F9AE02.roa (hash: 64gg/L8X7dQV3AAOAv3MN1klInujbmxMEcZ9X63m+I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:35:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA1BE, serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Validity Not Before: Nov 3 01:35:38 2025 GMT Not After : Nov 10 01:35:38 2025 GMT Subject: CN=690806eb-54d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:49:15:df:ce:83:93:87:d7:c2:8f:66:26:78: ad:82:e6:70:c3:d6:bf:d5:3d:0f:a8:fb:c0:ce:bb: 61:1f:90:41:13:43:f7:ce:3d:2f:84:fd:ae:15:73: a4:b2:46:8c:2c:bb:aa:4e:6c:ef:5f:db:02:bd:34: b4:5e:10:73:4c:16:e6:e7:06:8d:0d:56:14:7f:d5: b3:1f:e9:2c:0b:f3:9c:1a:37:2f:76:50:1e:f1:63: f8:d3:fc:75:1a:04:41:d1:7f:84:f8:1b:bd:78:4c: 97:09:b1:6b:dd:02:64:87:f2:14:5d:e2:2c:c7:96: 00:b3:b5:fa:51:4c:6b:9a:04:df:f7:48:8b:ce:cb: 21:25:b3:df:68:a2:52:c1:94:ee:6b:01:13:91:b2: a9:a7:c3:9f:b3:7e:b3:dc:28:0e:66:d3:8b:89:ad: 29:7b:9c:59:25:5d:65:8a:29:f6:0a:34:be:9f:85: fc:ea:6e:b4:9d:70:52:97:fa:2c:dd:18:9b:08:39: d5:eb:f0:8d:69:ac:21:7d:82:10:83:b9:90:95:c0: 2c:08:d7:05:de:41:b0:b5:b3:62:4f:0e:db:b2:9a: f6:7a:4e:d3:d2:66:2b:6e:52:20:19:d0:cf:cf:19: 87:e9:48:82:12:06:85:70:49:f7:6a:6a:e2:d9:f9: 47:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F5:A9:87:85:CA:72:6F:40:95:91:A2:E5:A9:11:3B:BB:80:D6:D7 X509v3 Authority Key Identifier: keyid:95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:53:06:c4:bf:61:eb:d1:47:b0:ed:6a:fc:4b:0e:f4:a3:4c: ce:46:5c:49:12:34:34:eb:30:3a:60:9c:4a:fa:23:0f:0a:c3: c9:3d:4b:3a:e3:ef:f7:e9:f0:25:fc:13:6d:6e:5c:bf:7d:e1: ce:2d:59:46:99:bb:f0:46:17:21:60:c3:ea:a1:4d:fc:b7:cd: 46:05:16:f1:8a:bc:ea:d7:c3:55:c4:e7:0b:f0:23:9e:ed:9a: 33:33:bd:37:98:36:a7:df:a7:34:05:33:52:f7:0d:80:51:90: 71:ce:d3:71:4d:e0:4b:9a:df:f4:d6:e6:4c:df:94:fe:d9:23: c9:c9:a4:bc:e6:d2:ca:74:78:a3:7b:ba:00:2f:69:c4:08:76: b6:05:37:10:58:7a:f6:9a:1c:82:1c:91:7d:ef:7c:c6:28:f9: c0:be:31:70:f7:cb:de:04:72:4f:6e:a7:22:51:5e:5d:ed:e0: f6:0f:38:26:bb:d3:4b:66:11:a0:e7:4f:e2:14:18:ef:84:61: fb:ef:2a:ee:22:6a:77:58:fa:bb:ce:7d:49:09:32:6a:77:ff: 13:40:f4:e5:72:2e:6b:06:86:9d:9d:e2:da:2b:12:da:85:56: d5:2e:db:8a:6c:d6:a0:ab:95:62:4e:a9:f9:b8:e8:b8:f6:24: 11:33:c9:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkExQkUxMTAvBgNVBAUTKDk1MjZBNjcyNDc4QUZBNzU0NDVEOEQwN0RDQzU3QzA1 ODk2NkVGRTIwHhcNMjUxMTAzMDEzNTM4WhcNMjUxMTEwMDEzNTM4WjAYMRYwFAYD VQQDEw02OTA4MDZlYi01NGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykkV386Dk4fXwo9mJnitguZww9a/1T0PqPvAzrthH5BBE0P3zj0vhP2uFXOk skaMLLuqTmzvX9sCvTS0XhBzTBbm5waNDVYUf9WzH+ksC/OcGjcvdlAe8WP40/x1 GgRB0X+E+Bu9eEyXCbFr3QJkh/IUXeIsx5YAs7X6UUxrmgTf90iLzsshJbPfaKJS wZTuawETkbKpp8Ofs36z3CgOZtOLia0pe5xZJV1liin2CjS+n4X86m60nXBSl/os 3RibCDnV6/CNaawhfYIQg7mQlcAsCNcF3kGwtbNiTw7bspr2ek7T0mYrblIgGdDP zxmH6UiCEgaFcEn3amri2flHtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG31qYeF ynJvQJWRouWpETu7gNbXMB8GA1UdIwQYMBaAFJUmpnJHivp1RF2NB9zFfAWJZu/i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTFCRS80MTY4RkY3NjJE MzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1uVkVYWTBIM01WOEJZbG03 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTYW1ja2VLLW5WRVhZMEgzTVY4QllsbTctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTFCRS80MTY4RkY3NjJEMzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1u VkVYWTBIM01WOEJZbG03LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKUwbEv2Hr0Uew7Wr8Sw70o0zORlxJEjQ06zA6YJxK+iMPCsPJPUs6 4+/36fAl/BNtbly/feHOLVlGmbvwRhchYMPqoU38t81GBRbxirzq18NVxOcL8COe 7ZozM703mDan36c0BTNS9w2AUZBxztNxTeBLmt/01uZM35T+2SPJyaS85tLKdHij e7oAL2nECHa2BTcQWHr2mhyCHJF973zGKPnAvjFw98veBHJPbqciUV5d7eD2Dzgm u9NLZhGg50/iFBjvhGH77yruImp3WPq7zn1JCTJqd/8TQPTlci5rBoadneLaKxLa hVbVLtuKbNagq5ViTqn5uOi49iQRM8mo -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:18 2025 by rpki-client